I use iRM for several months now and it's running very very well. Thank you for your work and effort to help here in the forum to every single user! Many thanks coming to you!

Well, back to the topic - recently I needed to add ignoreips to the fail2ban (large company behind single IP with sclerotic users - I added the IP into global [DEFAULT] section but it didn't help.I found out, the DEFAULT section is used only if you don't specify the parameter (ignoreip in my case) in the specific rule.

As conclusion, I would like to suggest you to delete all the ignoreip lines in the iredmail rules and add the private IP ranges in the DEFAULT section. It seems to me more logical and strightforward to adjust the rules...